Application No. : 1 0/702, 1 67 

Amendment dated February 4, 2008 

Response to Office action dated November 2, 2007 

Amendment to the Claims; 

This listing of claims will replace all versions, and listings, of claims in the application: 

Listing of Claims: 

1 . (Currently Amended) A method of secure communication comprising: 
establishing a secure tunnel between first and second parties using an encryption 

algorithm that establishes an encryption key; 

authenticating the second party with an authentication server over the secured tunnel 
establishing an authentication key; 

verifying by the first party that the second party possess the same encryption and 
authentication keys as the first party; [[ and]] 

provisioning a network access credential to the second party using the secured tunnel, 
responsive to the verifying the second party possess the same encryption and authentication keys 
as the first party ; and 

authenticating a second time by the second partv. wherein the second authentication is 
performed using the provisioned network access credential; 

wherein access to the second party to the network is denied until the second party 
successfully authenticates usmg the provisioned network access credential . 

2. (Original) The method of claim 1 wherein the communication implementation 
between the at least first and second parties is at least one of a wired implementation and a 
wireless implementation. 

3. (Original) The method of claim 1 wherein the encryption algorithm is an asymmetric 
encryption algorithm. 

4. (Original) The method of claim 3 wherein the asymmetric encryption algorithm is 
used to derive a shared secret, subsequently used in the step of establishing a secure tunnel. 
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5. (Original) The method of claim 3 wherein the asymmetric encryption algorithm is 
Diffie-Hellman key exchange. 

6. (Original) The method of claim 1 wherein the step of authenticating is performed 
using Microsoft MS-CHAP v2. 

7. (Original) The method of claim 1 further comprising a step of provisioning a 
public/private key pair on one of the at least first and second parties, and then to provision that 
public key on the respective remaining ones of the at least first and second parties. 

8. (Original) The method of claim 7 whereui the step of provisioning a public/private 
key pair comprises providing a server-side certificate in accordance with Public Key 
Infrastructure (PKI). 

9. (Currently Amended) An implementation for enabling secure communication 
comprising: 

an implementation for establishing a secure tunnel between first and second parties using 
an encryption algorithm that establishes an encryption key; 

an implementation for authenticating the second party with an authentication server using 
cryptography with an authentication key; 

an implementation for verifying by the first party that the second party possess the same 
encryption and authentication keys as the first part; [[and]] 

an implementation for providing a network access credential to the second party via the 
secure turmel responsive to successfully authenticating the second party and verifying by the first 
party that the second party possess the same encryption and authentication keys ; and 

an implementation for performing a second authentication, the second authentication is 
performed using the network access credential; 

wherein access to a network is denied until authentication with the network access 
credential is successful . 
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10. (Original) The implementation of claim 9 wherein the implementation for enabling 
communication between first and second parties is at least one of a wired implementation and a 
wireless implementation. 

11. (Original) The implementation of claim 9 wherein the encryption algorithm is an 
asymmetric encryption algorithm. 

12. (Original) The implementation of claim 11 wherein the asymmetric encryption 
algorithm is used to derive a shared secret, subsequently used in the step of establishing a secure 
tuimel. 

13. (Original) The implementation of claim 11 wherein the asymmetric encryption 
algorithm is Diffie-Hellman key exchange. 

14. (Original) The implementation of claim 9 wherein the implementation for 
authenticating comprises Microsoft MS-CHAP v2. 

15. (Original) The implementation of claim 9 fiirther comprising an implementation for 
provisioning a public/private key pair on one of the at least first and second parties, and then to 
provision that public key on the respective remaining ones of the at least first and second parties. 

16. (Original) The implementation of claim 15 wherein the implementation for 
provisioning a public/private key pair comprises and implementation for providing a server-side 
certificate in accordance with Public Key Infirastructure (PKI). 

Claims 17-25 (Canceled) 

26. (Previously Presented) The implementation of claim 9, that further comprises: 
an implementation for hashing the first party encryption key and the first party 
authentication key to produce a first hash; 
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an implementation for hashing the second party encryption key and the second party 
authentication key to produce a second hash; and 

an implementation for verifying the first and second hash are the same. 

Claim 27 (Canceled) 

28. (Previously Presented) The method of claim 1, further comprising invalidating a 
secure credential for the second party responsive to a failure of one of the group consisting of 
establishing the secure tunnel, authentication, and verifying second party has the same 
encryption and authentication keys. 
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